Semi-Integrated Payments Make It Easy to Meet EMV Compliance
As of October 1, 2015, the EMV mandate requires that businesses accept EMV chip card payments or face liability for counterfeit credit card fraud. Businesses that accept payments with either a standalone payment terminal or via a payment device integrated with a software application must upgrade, or face liability and miss out on new payment types. In addition, data breaches are growing, creating a continued need for PCI compliance.
Time to Rethink the Traditional Payment Architecture
Not only does the EMV mandate create a change for the businesses that accept payments, but it also has significant implications for software and app developers that provide point of sale solutions. Integrating a compliant EMV payment device with a software application can be a long and expensive undertaking due to stringent EMV and PCI requirements. Payment acceptors and software developers need a more flexible and simple approach to streamline the process.
Traditional Integrated Solutions Are Challenging for Software Developers
In a traditional integrated environment, a physical connection is maintained between the software or POS app and the payment terminal. This model requires sensitive cardholder data to be transmitted to the POS/ECR and merchant back-office systems before reaching the payment gateway. Because payment data is transmitted to the software or POS app, EMV and PCI requirements are “in scope” for the developer.
Semi-Integrated Solutions Secure and Streamline Data Transmission
We have developed an innovative solution that routes sensitive cardholder data directly to the payment gateway and non-sensitive customer information to the POS and merchant back office. Sensitive card data is encrypted and routed directly to the payment host or gateway, thereby keeping EMV and PCI “out of scope.” The semi-integrated environment ensures that all of these systems work together seamlessly, while isolating, securing, and streamlining the path of sensitive cardholder data.
Integrated Payments Benefits
Reduces the Compliance Burden
Our semi-integrated API solutions lighten the load on developers by moving EMV and PCI compliance out of scope for software applications. Sensitive cardholder data is encrypted at the terminal, so it is never transmitted to the software or app. This ensures that the POS receives only the non-sensitive data it needs to do its job, making the entire transaction more secure end-to-end.
The semi-integrated solution environment:
- Removes the need for software to go through the costly and time-consuming EMV certification process
- Removes the need for the software developer to comply with PCI data breach and other enhanced security standards.
A Simple, Secure Way to Support New Payment Options
With integrated payments, existing software solutions can easily support businesses by providing more payment options, including EMV chip cards, gift cards, EBT cards and NFC payments like Apple Pay and Android Pay.
It’s Easy for Software Developers to Integrate
Our solutions are easy to implement, which means that software developers can spend less time worrying about the nuts and bolts of processing payments and more time on business-growing software features. We also have a dedicated, full-time support team and online tools to assist with every aspect of implementation.